Mirrors/u-boot
1
0
Fork 0
mirror of https://source.denx.de/u-boot/u-boot.git synced 2026-06-02 09:46:37 +03:00
Code Issues Packages Projects Releases Wiki Activity
Files
567a4cdd14e0b07e9c715d1c52f586c6df164fa6
u-boot/tools
History
Kory Maincent d5ea30b233 tools: fwumdata: Fix use-after-free in parse_config() 
In parse_config(), devname is dynamically allocated by sscanf().
When sscanf() fails to fill enough fields (rc < 3), devname is freed and
the loop continues to the next line. However, if the next call to sscanf()
fails to match (rc == 0), devname is not written and still holds the stale
freed pointer. The subsequent free(devname) then operates on
already-freed memory.

Fix this by resetting devname to NULL before each sscanf() call, so
that a non-matching call leaves a NULL pointer and the subsequent
free() becomes a harmless no-op.

Reported-by: Coverity Scan
Link: https://lists.denx.de/pipermail/u-boot/2026-April/614161.html
Signed-off-by: Kory Maincent <kory.maincent@bootlin.com>
Reviewed-by: Ilias Apalodimas <ilias.apalodimas@linaro.org>
2026-05-12 09:31:51 +03:00
..
binman
binman: Use bintool wrappers for PKCS#11 tools in tests
2026-05-11 12:05:10 -06:00
buildman
doc/buildman: fix missing :: on examples
2026-03-27 10:52:43 +01:00
cv_bsp_generator
Cyclone V Board handsoff script
2025-12-01 14:01:12 +08:00
docker
CI: Update to using grub-2.14 for our tests
2026-02-06 09:29:58 -06:00
dtoc
tools: use setuptools 78.1.1
2025-12-10 09:28:43 -06:00
env
fw_env: drop unneeded variables from flash_write_buf()
2026-03-06 10:32:41 -06:00
fwumdata_src
tools: fwumdata: Fix use-after-free in parse_config()
2026-05-12 09:31:51 +03:00
gdb
kbuild: Bump the build system to 6.1
2026-01-02 10:28:14 -06:00
kermit
libfdt
scripts/dtc: Update to upstream version v1.7.2-35-g52f07dcca47c
2026-01-05 09:01:59 -06:00
logos
tools/logos: Add U-Boot logo with text 'U-Boot'
2025-12-06 11:32:02 +01:00
omap
patman
patman: fix use in worktree
2026-05-11 12:05:10 -06:00
scripts
u_boot_pylib
tools: u_boot_pylib: ensure all Python modules are installed
2026-04-09 12:17:28 -06:00
.gitignore
tools: Add support for fwumdata tool
2026-03-26 08:20:00 +02:00
aisimage.c
tools: aisimage: Make aisimage_check_params() static
2025-08-19 11:25:23 -06:00
aisimage.h
amlimage.c
tools: amlimage: include <inttypes.h>
2026-01-19 13:08:19 -06:00
asn1_compiler.c
tools/asn1_compiler: avoid -Wdiscarded-qualifiers
2026-04-24 11:28:17 -06:00
atmel_pmecc_params.c
atmelimage.c
tools/atmelimage: add const qualifier to fix compiler warning
2026-03-04 14:25:18 -06:00
bmp_logo.c
tools: bmp_logo: Mark local functions with static
2025-07-14 15:16:33 -06:00
default_image.c
crc32: Drop duplicates crc header includes
2023-08-08 17:41:52 -04:00
dumpimage.c
tools: mkimage/dumpimage: Allow to use -l with -T
2022-02-28 10:33:11 -05:00
dumpimage.h
eficapsule.h
efi: define struct efi_guid
2024-09-12 17:35:37 +02:00
efivar.py
endian-swap.py
envcrc.c
env: Rename SYS_REDUNDAND_ENVIRONMENT to ENV_REDUNDANT
2025-06-20 12:15:08 -06:00
expo.py
expo: Use standard numbering for save and discard
2024-10-18 14:10:22 -06:00
fdt_add_pubkey.c
tools: avoid implicit fallthrough in fdt_add_pubkey
2023-04-06 19:10:08 -04:00
fdt_host.h
tools: Improve comments in signing functions
2022-01-26 08:50:43 -07:00
fdtgrep.c
tools: fdtgrep: Mark util_usage() as static
2025-09-09 12:44:07 -06:00
file2include.c
fit_check_sign.c
tools: fit_check_sign: Mark usage() as static
2025-09-09 12:44:07 -06:00
fit_common.c
tools: copyfile: use 64k instead of 512 buffer
2024-04-17 17:06:01 -06:00
fit_common.h
tools: imagetool: Extend print_header() by params argument
2023-04-13 11:34:47 +02:00
fit_image.c
mkimage: fit: align DTs in external data to 8 Bytes by default
2026-02-02 09:15:52 -06:00
fit_info.c
tool: fit_info: Mark usage() as static
2025-09-09 12:44:07 -06:00
gen_eth_addr.c
gen_ethaddr_crc.c
tools: gen_ethaddr_crc: Make functions static
2025-07-14 15:16:40 -06:00
getline.c
getline.h
gpheader.h
gpimage-common.c
gpimage.c
tools: imagetool: Extend print_header() by params argument
2023-04-13 11:34:47 +02:00
ifdtool.c
tools: fix handle leak in ifdtool.c
2025-06-03 17:18:02 -06:00
ifdtool.h
ifwitool.c
ifwitool: Fix member access
2023-01-27 12:51:26 -05:00
image-host.c
treewide: fix uImage.FIT document paths
2026-03-27 10:50:29 +01:00
image-sig-host.c
lib: ecdsa: Add ECDSA384 support
2024-10-21 17:52:52 -06:00
imagetool.c
tools: imagetool: Extend print_header() by params argument
2023-04-13 11:34:47 +02:00
imagetool.h
mkimage: Add support for bundling TEE in mkimage -f auto
2025-12-06 11:46:09 -06:00
img2srec.c
tools: Remove duplicate newlines
2024-07-15 12:12:18 -06:00
imx8image.c
tools: fix format string in tools/imx8image.c
2026-01-17 15:01:00 -03:00
imx8m_image.sh
tools: imx8m_image: Support ddr3 firmware
2021-10-21 13:59:26 +02:00
imx8mimage.c
tools: imx8image: Mark imx8mimage_check_params() as static
2025-09-09 12:44:07 -06:00
imx9_image.sh
tools: imx8image: add i.MX95 support
2025-05-03 16:55:32 -03:00
imx_cntr_image.sh
imx: imx_cntr_image.sh: prevent warning for missing spl
2024-11-25 23:07:37 -03:00
imximage.c
tools: imximage: Fix potential memory leak
2025-02-27 09:53:10 -03:00
iot2050-sign-fw.sh
tools: iot2050-sign-fw.sh: Make localization of tools dir more robust
2023-10-09 15:24:31 -04:00
jtagconsole
Kconfig
tools: Reorganize mkfwumdata tool into fwumdata_src directory
2026-03-26 08:20:00 +02:00
key2dtsi.py
dm: Remove pre-schema tag support
2025-11-10 11:30:56 -06:00
kwbimage.c
tools: Fix potential null-deref with result of strtok_r
2025-02-18 16:32:24 -06:00
kwbimage.h
tools: kwbimage.h: use linux/compiler_attributes.h
2025-01-18 17:12:47 -06:00
kwboot.c
tools: kwboot: Add support for parsing SATA images with non-512 block size
2023-04-13 11:34:47 +02:00
lpc32xximage.c
tools: imagetool: Extend print_header() by params argument
2023-04-13 11:34:47 +02:00
Makefile
Merge branch 'next'
2026-04-06 12:16:57 -06:00
microcode-tool
microcode-tool.py
tools: Fix pylint 3.3.4 errors
2025-02-21 08:24:37 -06:00
mips-relocs.c
tools: mips-relocs: replace format string introducers
2025-07-29 16:48:10 -06:00
mkeficapsule.c
tools: mkeficapsule: Fix dump signature long option
2026-03-18 06:14:17 -06:00
mkenvimage.c
tools: mkenvimage: Make xstrtol() static
2025-07-14 15:16:35 -06:00
mkexynosspl.c
mkimage.c
mkimage: Add support for bundling TEE in mkimage -f auto
2025-12-06 11:46:09 -06:00
mkimage.h
image: Add an inline declaration of unmap_sysmem()
2025-02-28 16:51:01 -06:00
mksunxiboot.c
tools: mksunxiboot: Use sunxi_image header directly
2021-10-25 14:49:58 +01:00
mtk_image.c
tools: mtk_image: use uint32_t for ghf header magic and version
2023-08-03 09:40:50 -04:00
mtk_image.h
tools: mtk_image: use uint32_t for ghf header magic and version
2023-08-03 09:40:50 -04:00
mtk_nand_headers.c
tools: mtk_image: add support for nand headers used by newer chips
2022-09-23 15:09:16 -04:00
mtk_nand_headers.h
tools: mtk_image: add support for nand headers used by newer chips
2022-09-23 15:09:16 -04:00
mxsboot.c
tools: mxsboot: pre-fill buffer with 0xff, not 0
2023-12-13 15:33:57 -03:00
mxsimage.c
tools: Remove duplicate newlines
2024-07-15 12:12:18 -06:00
mxsimage.h
ncb.c
netconsole
tools/netconsole: Add support for socat
2021-12-02 08:34:01 +02:00
omapimage.c
tools: imagetool: Extend print_header() by params argument
2023-04-13 11:34:47 +02:00
omapimage.h
os_support.c
os_support.h
pbl_crc32.c
pbl_crc32.h
pblimage.c
tools: check result of lseek
2025-01-26 11:35:46 -06:00
pblimage.h
tools: pblimage: fix image header verification function
2022-02-28 12:01:02 +05:30
prelink-riscv.c
tools: prelink-riscv: Unmap the ELF image when done
2023-04-20 20:45:08 +08:00
prelink-riscv.inc
tools: prelink-riscv: Cosmetic style fixes
2023-04-20 20:45:08 +08:00
preload_check_sign.c
tools: Add preload_check_sign to authenticate images with a pre-load
2025-02-28 16:51:01 -06:00
printinitialenv.c
u-boot-initial-env: rework make target
2022-12-08 09:29:02 -05:00
proftool.c
tools: proftool: Fix potential memory leaks
2025-02-11 08:17:23 -06:00
qconfig.py
Kbuild: Always use $(PHASE_)
2025-04-11 12:16:44 -06:00
relocate-rela.c
tools: relocate-rela: Add M68K support
2023-09-06 13:28:29 +02:00
renesas_spkgimage.c
mkimage: do not write incorrect error message
2023-11-20 19:06:22 +01:00
renesas_spkgimage.h
tools: renesas_spkgimage.h: use linux/compiler_attributes.h
2025-01-18 17:12:47 -06:00
rkcommon.c
rockchip: mkimage: Add support for RK3506
2026-03-10 10:07:03 -06:00
rkcommon.h
tools: imagetool: Extend print_header() by params argument
2023-04-13 11:34:47 +02:00
rkimage.c
rkmux.py
rksd.c
rkspi.c
rmboard.py
tools: rmboard.py: Fix conversion from run_pipe to new helper
2025-06-27 10:02:19 -06:00
sfspl.c
dumpimage: fix handling of StarFive SPL too long
2025-03-18 08:17:32 -06:00
socfpgaimage.c
tools: imagetool: Extend print_header() by params argument
2023-04-13 11:34:47 +02:00
spl_size_limit.c
stm32image.c
tools: stm32image: Add support for STM32 Image V2.0
2025-06-11 09:42:56 +02:00
sunxi_egon.c
tools: imagetool: Extend print_header() by params argument
2023-04-13 11:34:47 +02:00
sunxi_toc0.c
tools: imagetool: Remove unnecessary check from toc0_verify_cert_item()
2024-08-06 00:19:57 +01:00
sunxi-spl-image-builder.c
tools: sunxi-spl-image-builder: support H6/H616 NAND boot
2026-02-03 21:45:27 +01:00
termios_linux.h
tools: termios_linux.h: Fix build error on ppc64
2025-07-08 18:15:20 -06:00
ublimage.c
tools: ublimage: Make ublimage_check_params() static
2025-07-14 15:16:38 -06:00
ublimage.h
update_octeon_header.c
update-subtree.sh
tools: Add script to update git subtree projects
2024-07-31 11:20:36 -06:00
vybridimage.c
tools: imagetool: Extend print_header() by params argument
2023-04-13 11:34:47 +02:00
zynqimage.c
tools: imagetool: Extend print_header() by params argument
2023-04-13 11:34:47 +02:00
zynqmp_pm_cfg_obj_convert.py
tools/zynqmp_pm_cfg_obj_convert.py: fix build with Vivado 2021.x
2022-02-15 12:41:00 +01:00
zynqmp_psu_init_minimize.sh
tools: zynqmp_psu_init_minimize.sh: Switch to clang-format
2025-09-16 13:45:00 -06:00
zynqmpbif.c
zynqmpimage.c
tools: zynqmpimage: print partition names
2024-01-10 09:27:12 +01:00
zynqmpimage.h
tools: zynqmpimage: print partition names
2024-01-10 09:27:12 +01:00